Adding an Active Directory domain for use with IWA
Active Directory (AD) domains to be used with IWA must be joined by both Content Gateway and directory members (clients).
If you are using IWA for the first time, see Integrated Windows Authentication, for a complete description of support and use.
To join a domain:
- Content Gateway must be able to resolve the domain name.
- Content Gateway system time must be synchronized with the domain controller’s time, plus or minus 1 minute.
- The correct domain Administrator name and password must be specified.
- There must be TCP/UDP connectivity to the domain controller(s) (ports 88, 389, 445).
- If backup domain controllers are configured, they and their Kerberos Distribution Center (KDC) services, must be reachable by Content Gateway on the network.
To specify and join a domain: